alert tcp $EXTERNAL_NET any -> $HOME_NET 22 (msg:"BLEEDING-EDGE SCAN
LibSSH? Based SSH Connection - Often used as a
BruteForce? Tool"; flow:established,to_server; content:"SSH-"; content:"libssh"; within:20; classtype:misc-activity; sid:2006435; rev:3;)
Added 2007-07-31 00:16:11 UTC
alert tcp $EXTERNAL_NET any -> $HOME_NET 22 (msg:"BLEEDING-EDGE SCAN
LibSSH? Based SSH Bruteforce Attempt"; flow:established,to_server; content:"SSH-"; content:"libssh"; within:20; classtype:misc-activity; sid:2006435; rev:2;)
Added 2007-07-27 12:46:42 UTC
alert tcp $EXTERNAL_NET any -> $HOME_NET 22 (msg:"BLEEDING-EDGE SCAN
LibSSH? Based SSH Bruteforce Attempt"; flags:PA; flow:established; pcre:"/SSH-(1|2)\.0-\.*libssh\.*/"; classtype:misc-activity; sid:2006435; rev:1;)
Added 2007-07-27 03:46:09 UTC